描述
Hash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS before 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x before 1.424.2.1 and 1.400.x before 1.400.0.11 could allow remote attackers to cause a considerable CPU load, aka "the Hash DoS attack."
AI分析AI驱动
受影响产品
cloudbeesjenkins
cloudbeesjenkins
jenkinsjenkins
jenkinsjenkins
参考资料
- http://www.openwall.com/lists/oss-security/2012/01/20/8Mailing ListThird Party Advisory
- https://access.redhat.com/security/cve/cve-2012-0785Broken Link
- https://jenkins.io/security/advisory/2012-01-12/Vendor Advisory
- https://security-tracker.debian.org/tracker/CVE-2012-0785Third Party Advisory
- https://www.cloudbees.com/jenkins-security-advisory-2012-01-12Third Party Advisory
- http://www.openwall.com/lists/oss-security/2012/01/20/8Mailing ListThird Party Advisory
- https://access.redhat.com/security/cve/cve-2012-0785Broken Link
- https://jenkins.io/security/advisory/2012-01-12/Vendor Advisory
- https://security-tracker.debian.org/tracker/CVE-2012-0785Third Party Advisory
- https://www.cloudbees.com/jenkins-security-advisory-2012-01-12Third Party Advisory